VDE-2023-010
Mai 14, 2025, 3:00 nachm.
The FL MGUARD family of devices is affected by two vulnerabilities.
VDE-2020-042
Mai 14, 2025, 3:00 nachm.
The Web-Based Management (WBM) of WAGOs programmable logic controller (PLC) is typically used for administration, commissioning and updates. Older firmware versions of the PLC family 750-88x and 750-352 are vulnerable …
VDE-2021-044
Mai 14, 2025, 3:00 nachm.
Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks in applications that accept attacker-controlled log4net configuration files.
VDE-2021-042
Mai 14, 2025, 3:00 nachm.
The Weidmueller Remote I/O (IP20) fieldbus couplers (u-remote) are affected by several vulnerabilities of the third-party TCP/IP Niche stack. An attacker may use crafted IP packets to cause a denial …
VDE-2022-001
Mai 14, 2025, 3:00 nachm.
The user management of the FL SWITCH 2xxx family of devices implements access rights based on roles and permission groups. An unprivileged user logged in via the SSH CLI is …
VDE-2021-005
Mai 14, 2025, 3:00 nachm.
The fdtCONTAINER component is integrated into an application (host application). The fdtCONTAINER application is a specific host application which integrates the fdtCONTAINER component. The fdtCONTAINER component exchanges binary data blobs …
VDE-2020-044
Mai 14, 2025, 3:00 nachm.
The Web-Based Management (WBM) of WAGOs programmable logic controller (PLC) is typically used for administration, commissioning and updates. With special crafted requests it is possible to read and write some …
VDE-2021-027
Mai 14, 2025, 3:00 nachm.
Critical vulnerabilities have been discovered in the product and in the utilized components jQuery by jQuery Team and TLS Version 1.0/1.1. The impact of the vulnerabilities on the affected device …